@inproceedings{666a4a6ed9b24e6bac0574f3fc3b3bb7,
title = "A proposed approach to compound file fragment identification",
abstract = "One of the biggest challenges in file fragment classification is the low classification rate of compound files known as high entropy files that contain different types of data, such as images and compressed text. It is seen that current methods for file fragment classification may not work for classifying these compound files. In this paper we propose a novel approach based on detecting deflate-encoded data in compound file fragments then decompress that data before applying a machine learning technique for classification. We apply our proposed method to classify Adobe portable document format (PDF) file type. Experiments showed high classification rate for the proposed method.",
keywords = "Compound file fragment classification, Digital forensics, File type classification, Network forensics",
author = "Dat TRAN and Wanli MA and Dharmendra SHARMA",
year = "2014",
doi = "10.1007/978-3-319-11698-3_38",
language = "English",
isbn = "9783319116976",
volume = "8792",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer",
pages = "493--500",
editor = "Au, {Man Ho} and Barbara Carminati and Kuo, {C.-C. Jay}",
booktitle = "Network and System Security - 8th International Conference, NSS 2014, Proceedings",
address = "Netherlands",
note = "The 8th International Conference on Network and System Security 2014 ; Conference date: 15-10-2014 Through 17-10-2014",
}